Receipts, not vibes.
Security, privacy, and compliance evidence for the Fahmix AI platform. Every certification, every vendor, every contractual obligation â linked from one page so your auditor can finish their checklist in a single sitting.
- 01 · attestations
Certifications & assessments
Live status of SOC 2 Type I (in audit), ISO 42001 roadmap, EU AI Act conformance, GDPR / CPRA / PDPL / DSA mapping.
open - 02 · vendor list
Subprocessors
Every vendor that may touch tenant data, what data category they touch, and the residency region they serve. 30-day notice on additions.
open - 03 · contract
Data Processing Addendum
Template DPA reflecting GDPR Article 28, UAE PDPL, Bangladesh DSA. Counter-signature workflow inside the dashboard.
open - 04 · agreement
Terms of Service
Master subscription terms covering ROU-based billing, service availability, acceptable use, and dispute resolution.
open - 05 · privacy
Privacy Policy
How Fahmix AI collects, processes, and retains data â plus an end-user-facing privacy notice template each tenant can adopt.
open - 06 · security
Responsible disclosure
Found a security issue? Email [email protected] (PGP key inside) or file a private advisory on GitHub. We respond inside 48h.
open
Questions auditors usually ask first.
Email [email protected] â we keep a shared Q&A doc and reply inside 2 business days. If you need a signed questionnaire (CAIQ, SIG Lite), tell us in the first message.